Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method executed in servers that interface with a Database Management System (DBMS) for signing and exchanging documents electronically, said documents being signed using biometric information of subscribers that sign the documents, the method comprising the steps of: a. capturing biometric data blocks associated with a subscriber; b. generating a biometric key, at a subscriber node, comprising a biometric hash derived deterministically from biometric feature elements of the biometric data blocks by a quantization that constructs intervals for each of the biometric feature elements, where the biometric hash is generated by mapping the biometric feature elements into the intervals; c. sending the biometric hash to a plurality of observer nodes; d. receiving a plurality of responses from the plurality of observer nodes; each received response validating or invalidating the biometric hash based on a biometric hash ledger associated with the subscriber at each one of the plurality of the observer nodes; e. authenticating the subscriber based on responses that validate the biometric hash; f. sending the biometric hash to the plurality of observer nodes to update all biometric hash ledgers associated with the subscriber based on a time stamp sent from the subscriber node; and g. allowing the subscriber to sign a document if the subscriber is authenticated and if an entered PIN verifies an identity of the subscriber.
2. The method of claim 1 further including the step of executing a plurality of flow engines at each node used by the subscribers and observers, including a first flow engine for forwarding the biometric key of the subscriber and a plurality of second flow engines for forwarding biometric keys derived from biometric data associated with observers and exchanging biometric keys between the subscriber node and the plurality of the observer nodes.
This invention relates to a biometric key management system for secure communication between subscribers and observers in a network. The system addresses the challenge of securely exchanging and managing biometric keys to authenticate and authorize participants in a distributed environment. The method involves deploying multiple flow engines at each network node used by subscribers and observers. A first flow engine is dedicated to forwarding the subscriber's biometric key, ensuring that the subscriber's authentication credentials are securely transmitted. Additionally, multiple second flow engines handle biometric keys derived from observer biometric data, enabling secure exchange of these keys between subscriber nodes and observer nodes. This architecture allows for dynamic and scalable key management, ensuring that biometric data is processed and shared securely across the network. The system ensures that biometric keys are properly routed and exchanged, maintaining the integrity and confidentiality of the authentication process. By using separate flow engines for subscriber and observer keys, the system prevents unauthorized access and ensures that only authenticated participants can communicate. This approach enhances security in applications such as biometric authentication, access control, and secure data exchange.
3. The method of claim 1 further including the step of the flow engines comprise workflow engines that allocate tasks to the subscribers.
This invention relates to a system for managing and executing workflows in a distributed computing environment. The system addresses the challenge of efficiently distributing and processing tasks across multiple subscribers or participants in a workflow. The core functionality involves a set of flow engines that dynamically allocate tasks to subscribers based on predefined workflow rules. These flow engines are specialized workflow engines designed to coordinate task distribution, ensuring that tasks are assigned to the appropriate subscribers in a structured and optimized manner. The system may also include mechanisms for monitoring task progress, handling task dependencies, and ensuring that workflows are completed in a timely and reliable manner. The invention aims to improve efficiency, scalability, and reliability in workflow management by automating task allocation and coordination among subscribers. This approach is particularly useful in environments where tasks must be distributed across multiple systems or participants, such as in cloud computing, enterprise applications, or collaborative workflows. The system may also include features for error handling, task prioritization, and dynamic reallocation of tasks to ensure smooth execution of workflows.
4. The method of claim 1 further including receiving a private biometric key from a card reader, wherein the private biometric key is derived from the subscriber's biometric data, wherein the subscriber is further authenticated based on a certificate that includes a public key derived from the private biometric key before the subscriber is allowed to sign the document.
This invention relates to secure document signing using biometric authentication. The problem addressed is ensuring the identity of a subscriber before allowing them to sign a document, particularly in scenarios where traditional authentication methods may be insufficient or vulnerable to fraud. The method involves a card reader that receives a private biometric key derived from the subscriber's biometric data, such as a fingerprint or facial scan. This private key is used to authenticate the subscriber by verifying it against a certificate that contains a corresponding public key. The certificate is checked to confirm its validity and association with the subscriber. Only after successful biometric authentication is the subscriber permitted to proceed with signing the document. This process enhances security by ensuring that the person signing the document is the legitimate subscriber, reducing the risk of unauthorized access or fraudulent signatures. The system may also include steps for generating the biometric key pair, storing the private key securely, and validating the certificate against a trusted authority. The use of biometric data ensures that authentication is tied to the subscriber's unique physical characteristics, making it more secure than traditional password or PIN-based methods. This approach is particularly useful in financial, legal, or other high-security applications where identity verification is critical.
5. The method of claim 1 further including using the biometric hash in a block of a blockchain associated with the subscriber, wherein the biometric hash is stored on a plurality of nodes, and authenticating the subscriber using a symmetric cryptography method that is based on using the biometric hash as a shared secrete in the symmetric cryptography method.
This invention relates to secure biometric authentication systems using blockchain technology. The problem addressed is the need for robust, decentralized identity verification that resists tampering and unauthorized access. The solution involves generating a biometric hash from a subscriber's unique biological data, such as fingerprints or facial recognition, and storing this hash in a blockchain. The blockchain is distributed across multiple nodes, ensuring redundancy and security against single points of failure. The biometric hash serves as a shared secret in a symmetric cryptography method for authenticating the subscriber. When authentication is required, the system verifies the subscriber by comparing a newly generated biometric hash with the stored hash in the blockchain. The use of symmetric cryptography, where the same key is used for encryption and decryption, ensures efficient and secure authentication. The blockchain's decentralized nature prevents unauthorized modifications to the stored biometric hash, enhancing security. This approach combines biometric authentication with blockchain's immutability and cryptographic techniques to provide a tamper-proof identity verification system. The method ensures that only authorized subscribers can access secure systems or services, reducing the risk of identity theft and fraud.
6. The method of claim 1 further including using the biometric hash in a block of a blockchain associated with the subscriber, wherein the biometric hash is stored on a plurality of nodes, and authenticating the subscriber using asymmetric cryptography that is based on using the biometric hash as a private key and a certificate that includes a public key derived from the biometric hash.
This invention relates to secure biometric authentication systems using blockchain technology. The problem addressed is the need for a decentralized, tamper-proof method of verifying user identities based on biometric data without relying on centralized databases, which are vulnerable to breaches. The system generates a biometric hash from a subscriber's unique biological characteristics, such as fingerprints or facial recognition data. This hash is then stored in a blockchain, distributed across multiple nodes to ensure redundancy and security. The biometric hash serves as a private key in an asymmetric cryptographic system, while a corresponding public key is derived from the hash and embedded in a digital certificate. Authentication occurs when the subscriber provides their biometric data, which is hashed and compared to the private key stored in the blockchain. The certificate, containing the public key, is used to verify the authenticity of the biometric hash. By leveraging blockchain's decentralized nature and cryptographic techniques, the system ensures that biometric data is never stored in plaintext, reducing the risk of identity theft. The distributed storage of the biometric hash across nodes enhances security, as compromising a single node does not expose the entire system. This approach provides a robust, scalable solution for secure identity verification in applications requiring high assurance, such as financial transactions or access control.
Unknown
December 24, 2019
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.